Analysis
-
max time kernel
130s -
max time network
125s -
platform
windows10_x64 -
resource
win10 -
submitted
16-07-2020 18:38
General
-
Target
DHL INV+AWB100617740009725.PDF____.exe
-
Size
727KB
-
MD5
279189f9746b79c1112ebf9cbb2daef8
-
SHA1
0723886286f7050f9a330defff50c3216e40fe1b
-
SHA256
1868421d82c1476c4106fee2902fde4c749d7e8bcd9b34fdc09d86733d9198de
-
SHA512
03a748075224e73c93bf1681800070aae3e903a379339777b6a8cf73b95d3399d185d8506ca5f07f082a3a0affd7d63c0230f8f9826a40b9a36be6f8fb45b328
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\DHL INV+AWB100617740009725.PDF____.exe"C:\Users\Admin\AppData\Local\Temp\DHL INV+AWB100617740009725.PDF____.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken